cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

1582
Views
0
Helpful
4
Replies
Mafiaboy401
Beginner

ISE Client Posture Policies

                   Hi!

Anybody knows how to configure Cisco ISE Posture Policy to check windows Service Pack? For example, we need to create a policy to check if machine has a Antivirus and the last service pack installed. The policy for antivirus it's simple, but we don't know how to configure for Service Pack check.

Thanks!

2 ACCEPTED SOLUTIONS

Accepted Solutions
jw.sl9
Beginner

Policy > Policy Elements > Condidtions > Posture > Registry Condition

  • pc_W7_SP0    
  • pc_W7_SP0_int
  • pc_W7_SP1   
  • pc_W7_SP1_int

Use those or duplicate them and modify as you need.


I hope you find this information useful, if it was satisfactory for you, please mark the question as Answered. Please rate post you consider useful. -James

View solution in original post

For those specifc examples, no.  They are pc_  = pre configured from Cisco.

If you want to modify them, you will need to adjust the Value to match what you need.

As always, remember that Registry Valures are CasE SenSITIve.  :-)

I find it best to export the reg key area I need and copy-paste leaving out the " Quotation marks"


I hope you find this information useful, if it was satisfactory for you, please mark the question as Answered. Please rate post you consider useful. -James

View solution in original post

4 REPLIES 4
jw.sl9
Beginner

Policy > Policy Elements > Condidtions > Posture > Registry Condition

  • pc_W7_SP0    
  • pc_W7_SP0_int
  • pc_W7_SP1   
  • pc_W7_SP1_int

Use those or duplicate them and modify as you need.


I hope you find this information useful, if it was satisfactory for you, please mark the question as Answered. Please rate post you consider useful. -James

View solution in original post

Do we need to create the registry condition?

What is the Registry Type, Registry Root Key, Sub-key and Value Operator to check?

Thanks.

For those specifc examples, no.  They are pc_  = pre configured from Cisco.

If you want to modify them, you will need to adjust the Value to match what you need.

As always, remember that Registry Valures are CasE SenSITIve.  :-)

I find it best to export the reg key area I need and copy-paste leaving out the " Quotation marks"


I hope you find this information useful, if it was satisfactory for you, please mark the question as Answered. Please rate post you consider useful. -James

View solution in original post

Create
Recognize Your Peers
Polls
Which of these topics should we host an event in the Community?

Top Choice: ISE- Guest and Posture Troubleshooting (40%)

Content for Community-Ad

ISE Webinars



Did you miss a previous ISE webinar?

CiscoISE YouTube Channel